The Shiny Buttons WordPress plugin through 1.1.0 does not have any authorisation and CSRF in place when saving a template (wpbtn_save_template function hooked to the init action), nor sanitise and escape them before outputting them in the admin dashboard, which allow unauthenticated users to add a malicious template and lead to Stored Cross-Site Scripting issues.
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/29514d8e-9d1c-4fb6-b378-f6b7374989ca | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2021-12-13T10:40:55
Updated: 2021-12-13T10:40:55
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24792
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-13T11:15:08.643
Modified: 2021-12-16T14:47:21.497
Link: CVE-2021-24792
JSON object: View
Redhat Information
No data.
CWE